🎉 First 100 users offer: Get 35% off any plan — use code WEL35 at checkout. Sign up now →
Home / Trust / Privacy Policy
Privacy Policy

Your data, your rights.

Last updated: June 23, 2026 — This policy describes how SocialEnrich ("we", "us", "our") collects, uses, and protects personal data.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, company name, job title when you register.
  • Payment Information: Billing details processed securely via Stripe. We do not store credit card numbers.
  • Communications: Support tickets, emails, and chat messages you send us.
  • API Usage Data: API keys, query parameters, and enrichment requests.

1.2 Information We Collect Automatically

  • Usage Data: Pages visited, features used, time spent, click patterns.
  • Device Information: Browser type, operating system, IP address, device identifiers.
  • Cookies: Essential, analytics, and preference cookies. See our Cookie Policy.
  • Log Data: Server logs including timestamps, API endpoints accessed, response codes.

1.3 Data We Process on Your Behalf

  • Enrichment Data: Contact data you submit for enrichment via our platform or API.
  • Social Intelligence Data: Publicly available social profile data processed through our enrichment engine.

2. How We Use Your Information

  • Service Delivery: To provide, maintain, and improve the SocialEnrich platform.
  • Authentication & Security: To verify identity, prevent fraud, and ensure platform security.
  • Communication: To send transactional emails, support responses, and product updates.
  • Analytics: To understand usage patterns and improve user experience.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.
  • Billing: To process payments and manage subscriptions.

3. Legal Basis for Processing (GDPR)

We process personal data under the following legal bases:

  • Contract Performance: Processing necessary to fulfill our service agreement with you.
  • Legitimate Interests: Platform security, fraud prevention, service improvement.
  • Consent: Marketing communications and non-essential cookies (withdrawable at any time).
  • Legal Obligation: Compliance with applicable laws and regulations.

4. Data Sharing & Third Parties

We do not sell your personal data. We share data only with:

  • Service Providers: Cloud hosting (Google Cloud Platform), payment processing (Stripe), analytics (Google Analytics), customer support (Chatwoot).
  • Legal Requirements: When required by law, court order, or governmental authority.
  • Business Transfers: In connection with a merger, acquisition, or asset sale (with prior notice).

All third-party processors are bound by Data Processing Agreements (DPAs) and are GDPR-compliant.

5. Data Retention

  • Account Data: Retained while your account is active, plus 30 days after deletion request.
  • Enrichment Data: Processed in real-time and cached for up to 90 days to optimize performance.
  • Log Data: Retained for 12 months for security and debugging purposes.
  • Billing Records: Retained for 7 years as required by applicable tax and accounting laws.

6. Your Rights

Depending on your jurisdiction, you have the right to:

Access
Request a copy of your personal data
Rectification
Correct inaccurate or incomplete data
Erasure
Request deletion of your data ("right to be forgotten")
Portability
Receive your data in a structured, machine-readable format
Restriction
Restrict processing of your personal data
Objection
Object to processing based on legitimate interests

To exercise your rights, contact us at privacy@socialenrich.net. We respond within 30 days.

7. International Data Transfers

Data may be transferred to and processed in countries outside your jurisdiction, including Vietnam and the United States. We ensure appropriate safeguards through Standard Contractual Clauses (SCCs) and adequacy decisions where applicable.

8. Security

  • AES-256 encryption at rest
  • TLS 1.3 encryption in transit
  • Role-based access controls (RBAC)
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance (target Year 1)

For details, see our Trust Center or request our Security Whitepaper under NDA.

9. Children's Privacy

SocialEnrich is a B2B platform not directed at individuals under 18 years of age. We do not knowingly collect personal data from children. If we discover we have collected data from a child, we will delete it promptly.

10. Regional Compliance

GDPR (European Economic Area)

We comply with the General Data Protection Regulation. Our Data Protection Officer can be reached at dpo@socialenrich.net.

CCPA (California)

California residents may exercise their rights under the California Consumer Privacy Act. We do not sell personal information as defined by the CCPA.

PDPA (Vietnam)

We comply with Vietnam's Personal Data Protection Decree (Decree 13/2023/NĐ-CP). Data subjects may exercise their rights by contacting us at privacy@socialenrich.net.

11. Changes & Contact

We may update this Privacy Policy periodically. Material changes will be communicated via email or in-app notification at least 30 days before they take effect.

Contact:
SocialEnrich
Email: privacy@socialenrich.net
Trust Center: socialenrich.net/trust

Don't just enrich contacts.
Start understanding people.

950M+ profiles. One API. First-party data, no middlemen.

Try Free → Book a Demo

No credit card required · 100 free enrichments · Cancel anytime